makefu/nixos-config
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

secrets/ssh_server.nix: init

Browse source
This commit is contained in:
makefu 2023-08-18 11:17:33 +02:00
parent fc56842825
commit e063db59dc
No known key found for this signature in database
GPG key ID: 36F7711F3FC0F225
2 changed files with 9 additions and 1 deletions

2
2configs/default.nix
View file

@ -7,7 +7,7 @@ with lib;
./editor/vim.nix ./editor/vim.nix
./binary-cache/nixos.nix ./binary-cache/nixos.nix
./minimal.nix ./minimal.nix
./secrets ./secrets/ssh_server.nix
# ./security/hotfix.nix # ./security/hotfix.nix
]; ];

8
2configs/secrets/ssh_server.nix Normal file
View file

@ -0,0 +1,8 @@
{
sops.secrets."ssh_host_rsa_key" = {};
sops.secrets."ssh_host_ed25519_key" = {};
services.openssh.hostKeys = lib.mkForce [
{ bits = 4096; path = (config.sops.secrets."ssh_host_rsa_key".path); type = "rsa"; }
{ path = config.sops.secrets."ssh_host_ed25519_key".path; type = "ed25519"; } ];
}